Description
Coppermine Photo Gallery (CPG) 1.5.12 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by include/inspekt.php and certain other files.
Remediation
References
Related Vulnerabilities
WordPress Plugin LiveGrounds 'uid' Parameter Cross-Site Scripting (0.42)
XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-34467)
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-11585)
MySQL CVE-2020-14789 Vulnerability (CVE-2020-14789)
WordPress Plugin Social Media Widget by Acurax Multiple Unspecified Vulnerabilities (3.2.3)